beautypg.com

Using idm as a monitoring tool – HP Identity Driven Manager Software Series User Manual

Page 34

background image

2-18

Getting Started
Using IDM as a Monitoring Tool

Using IDM as a Monitoring Tool

Whether or not you configure and apply access and authorization parameters using
IDM, you can use IDM to monitor user sessions on the network and generate usage
reports. You can use the monitoring features along with the IDM Reports to track
usage patterns, user session statistics, bandwidth usage, top users, and so on. The
User session information can also be used to track current user sessions and modify
the User’s access to network resources if needed.

N o t e :

Session accounting must be enabled on switches, wireless controllers, and wireless
access points, as well as in IDM, for the monitoring and user session accounting to
work. Refer to the section on “Radius Authentication and Accounting” in the Access
and Security Guide
provided with the PCM switch for details on enabling session
accounting.

You can enable or disable IDM monitoring using the IDM Preferences. Using the
IDM Preferences, you can also configure IDM to work with existing “Endpoint
Integrity” applications used to determine the compliance of the authenticating clients
to rules and requirements (for firewalls, anti-virus, and so forth) that have been set
up in the domain.

N o t e :

If you are configuring session interim update on your network, make sure that you
configure session interim update on all your wired switches and the switches where
wireless controllers are connected to wireless Access Points. HP recommends that
you configure a value four times greater than the value of log off period configured
for user session.

N o t e :

If you are using Web-Auth or MAC-Auth for user authentication, user session
statistics are unavailable from the switch and cannot be collected, unless you are
using a version of firmware on the switch that supports accounting for Web-Auth and
MAC-Auth sessions. Not all switch software versions support this. Check the HP
Networking Support web site for updates.